7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.153 Low
EPSS
Percentile
95.9%
Added: 03/24/2006
CVE: CVE-2005-0944
BID: 12960
OSVDB: 15187
The Microsoft Jet Database Engine provides data access functionality for a number of applications.
An input validation vulnerability in the Microsoft Jet Database Engine could lead to command execution when a user opens a specially crafted Microsoft Access file.
Avoid opening Microsoft Access database files from untrusted sources.
<http://www.kb.cert.org/vuls/id/176380>
Successful exploitation requires a user to download the exploit file and open it in Microsoft Access.
Windows